Continue to invest in cyber security capabilities and practices to effectively mitigate the risks associated with increasing digitisation of infrastructure and service delivery.

Agencies should ensure ‘Secure by Design’ principles are adhered to in technology-enabled investments and monitored through updated ICT and Infrastructure Assurance Frameworks.

Agencies should target appropriate maturity and funding levels to increase cyber security capability, informed by reporting on and analysis of compliance with the NSW Cyber Security Policy.